Mandatory cybersecurity standards under new laws

By Tess Ikonomou

Reporting of ransomware payments will apply to businesses that meet an annual turnover threshold. (EPA PHOTO)

Smart devices will be subject to cybersecurity standards and some businesses will have mandatory reporting requirements for ransom payments under new laws.

The Albanese government's legislative package passed federal parliament on Monday, and has given Australia its first standalone Cyber Security Act.

Mandatory security standards will apply to devices including smart TVs smartwatches, baby monitors and consumer energy resources such as rooftop solar systems.

Reporting of ransomware payments will apply to businesses that meet an annual turnover threshold.

A report will have to be made to the Department of Home Affairs or the Australian Signals Directorate within 72 hours of making the payment or becoming aware of the payment.

Labor senator Raff Ciccone — The package will help Australia become a leader in cybersecurity by 2030, senator Raff Ciccone says.

Joint Committee on Intelligence and Security chair Raff Ciccone said many people could not live without smart devices, which had become part of daily life.

"This package provides an opportunity for this country ... to strengthen our national cybersecurity defences," the Labor senator told parliament.

"The bills will position Australians and all our businesses ... to better respond and to recover from cybersecurity threats and to help our nation become a world leader in cybersecurity by 2030 in an evolving threat environment."

The Victorian senator said the voluntary reporting scheme was underused, which limited the government's understanding of the ransomware threat landscape.

"The reporting obligations aren't about calling out businesses and hurting their reputation," he said.

"Instead, they'll enable us to determine the threat level and assist Australia's domestic law enforcement to disrupt cyber crime activities, both locally and abroad."

More than 87,000 cybercrime incidents were reported to the Australian Signals Directorate in the past year.

An attack on Optus in September 2022 affected 10 million people, and another in October at Medibank impacted about 9.7 million people.

Under the changes, a Cyber Incident Review Board will be set up to undertake reviews following significant incidents, and to make recommendations in a bid to help prevent future attacks.

The package implements reforms under the government's 2023-2030 Australian Cyber Security Strategy.

Opposition cyber spokesman James Paterson said the coalition supported the intent of Labor's package in the face of "a complex and evolving threat environment".

"The government needs robust levers to protect Australians from cyber threats," he said.

License this article

Subscribe to AAPNews

To read this article (and many more) click on the Subscribe button below and gain access to AAPNews.

What is AAPNews?

For the first time, Australian Associated Press is delivering news straight to the consumer.

No ads. No spin. News straight-up.

Not only do you get to enjoy high-quality news delivered straight to your desktop or device, you do so in the knowledge you are supporting media diversity in Australia.

AAP Is Australia’s only independent newswire service, free from political and commercial influence, producing fact-based public interest journalism across a range of topics including politics, courts, sport, finance and entertainment.

The Morning Wire

Wake up to AAPNews’ morning news bulletin delivered straight to your inbox or mobile device, bringing you up to speed with all that has happened overnight at home and abroad, as well as setting you up what the day has in store.

Breaking News

Be the first to know when major breaking news happens.

Notifications will be sent to your device whenever a big story breaks, ensuring you are never in the dark when the talking points happen.

Focused Content

Enjoy the best of AAP’s specialised Topics in Focus. AAP has reporters dedicated to bringing you hard news and feature content across a range of specialised topics including Environment, Agriculture, Future Economies, Arts and Refugee Issues.

Subscription Plans

Choose the plan that best fits your needs. AAPNews offers two basic subscriptions, all billed monthly.

Once you sign up, you will have seven days to test out the service before being billed.

Full Access

AU$10

Enjoy all that AAPNews has to offer
Access to breaking news notifications and bulletins
Includes access to all AAPNews’ specialised topics

Join Now

Student Access

AU$5

Gain access via a verified student email account
Enjoy all the benefits of the ‘Full Access’ plan at a reduced rate
Subscription renews each month

Join Now

Annual Access

AU$99

All the benefits of the 'Full Access' subscription at a discounted rate
Subscription automatically renews after 12 months

Join Now

AAPNews also offers enterprise deals for businesses so you can provide an AAPNews account for your team, organisation or customers. Click here to contact AAP to sign-up your business today.

SEVEN DAYS FREE

Download the app